6Mar
CVE-2024-24786 | protobuf up to 1.32.x on Go JSON protojson.Unmarshal infinite loop
A vulnerability was found in protobuf up to 1.32.x on Go and classified as problematic. This issue affects the functionprotojson.Unmarshal
of the component JSON Handler. The manipulation leads to infinite loop.
The identification of this vulnerability is CVE-2024-24786. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.